Hello all,
The summary could be: Outlook 2013 fails randomly to find recipient at GAL when connected via Exchange Anywhere from different forest.
Details:
Computers joined to Forest A consume Exchange Anywhere from Exchange servers through Internet where the Exchange Servers are joined to Forest B. No trust relationship between forest.
When sending encrypted emails, arround 70% of times, Outlook is able to send the email getting the public key of recipient from the GAL, but arround 30% the mail cannot be sent with error, event before or later (restarting Outlook) is able to send to this recipient.
"Microsoft Outlook had problems encrypting this message because the following recipients had missing or invalid certificates, or conflicting or unsupported encryption capabilities"
After some troubleshooting with Process Monitor I noticed that at the moment of send the encrypted mail outlooks waits few seconds and on background an few LDAP connection are stablished to Forest A domain controller.
I reproduced on a third computer joined to Forest C that LDAP connections are also established to the DC of Forest C but there it worked all my test and connection is also done through Internet with Exchange Anywhere.
Does anyone experienced this problem?
Can I avoid those LDAP to DCs connections anyhow?